Personal information - what is it?
-
The Data (Use and Access) Act 2026 got Royal Assent on 19 June 2026. All the provisions affecting data protection law and the Privacy and Electronic Regulations Communications are now in force. The Department for Science and Innovation (DSIT) has set out the commencement plans. You can find more details on the Gov.uk website.
The guidance on this page is suitable for large businesses in the public, private and third sectors. Small businesses should use the resources on our small business web hub.
Brief guidance
Who does the UK GDPR apply to?
A brief overview of who the UK GDPR applies to and some key definitions.
What is personal information?
The definition of personal information and how to know whether the information you are using is personal information.
Detailed guidance
What is personal information?
Detailed guidance about what personal information is, identifiers and related factors, directly identifying someone and the definition of "relates to".
Anonymisation guidance
Covering anonymisation techniques, the role that anonymisation plays in the three regimes of data protection law and accountability and governance measures. Includes case studies.
Resources
Training videos: What is personal data?
Recordings of ICO staff training on what personal information is and some key data protection definitions, available for you to reuse.